|Publication number||US6687825 B1|
|Application number||US 09/527,367|
|Publication date||Feb 3, 2004|
|Filing date||Mar 17, 2000|
|Priority date||Mar 17, 2000|
|Publication number||09527367, 527367, US 6687825 B1, US 6687825B1, US-B1-6687825, US6687825 B1, US6687825B1|
|Inventors||David Carroll Challener, Daryl Carvis Cromer, Mark Charles Davis, Dhruv Manmohandas Desai, Charles William Kaufman, Hernando Ovies, James Peter Ward|
|Original Assignee||International Business Machines Corporation|
|Export Citation||BiBTeX, EndNote, RefMan|
|Patent Citations (10), Referenced by (17), Classifications (8), Legal Events (8)|
|External Links: USPTO, USPTO Assignment, Espacenet|
1. Field of the Invention
The present invention relates in general to data processing systems and, in particular, to a data processing system and method for protecting data in a hard drive utilizing a signature device. Still more particularly, the present invention relates to a data processing system and method for protecting data in a hard drive by encrypting the data utilizing a software signature value stored in the signature device and a textual description of the data.
2. Description of the Related Art
Personal computer systems are well known in the art. They have attained widespread use for providing computer power to many segments of today's modern society. Personal computers (PCs) may be defined as a desktop, floor standing, or portable microcomputer that includes a system unit having a central processing unit (CPU) and associated volatile and non-volatile memory, including random access memory (RAM) and basic input/output system read only memory (BIOS ROM), a system monitor, a keyboard, one or more flexible diskette drives, a CD-ROM drive, a fixed disk storage drive (also known as a “hard drive”), a pointing device such as a mouse, and an optional network interface adapter. One of the distinguishing characteristics of these systems is the use of a motherboard or system planar to electrically connect these components together. Examples of such personal computer systems are IBM's PC 300 series, Aptiva series, and Intellistation series.
There is a need to store data securely in a hard disk drive. One known method for protecting data on a typical hard drive is to provide a power-on password which must be correctly entered prior to gaining access to a computer system. Access to the computer system, including the hard drive, is denied if the correct password is not entered.
Another known system provides a password for protecting the hard drive. In this system, the hard drive is modified so that it stores a password which must be correctly entered prior to data on the hard drive being accessible.
Another known method within a computer system provides for encrypting data to be stored on a hard drive utilizing encryption keys which are permanently stored within the computer system. A problem can arise when this system is to be exported into a foreign country. Certain types of encryption technology, including encryption keys stored within a computer system, may not be exported to other countries.
Therefore a need exists for a data processing system and method for protecting data to be stored in a typical hard drive utilizing a signature value stored in a removable signature device, where the data processing system does not include permanently stored encryption keys.
A data processing system and method are disclosed for protecting data within a hard disk drive included within a data processing system. Data is generated. A signature value is provided which is stored in a signature device. The signature device is capable of being inserted into and removed from a computer system. A textual description of the data is created. The data is encrypted utilizing both the signature value stored on the device and the textual description. The encrypted data is then stored on the hard disk drive. The data processing system does not permanently store encryption keys.
The above as well as additional objectives, features, and advantages of the present invention will become apparent in the following detailed written description.
The novel features are set forth in the appended claims. The present invention itself, however, as well as a preferred mode of use, further objectives, and advantages thereof, will best be understood by reference to the following detailed description of a preferred embodiment when read in conjunction with the accompanying drawings, wherein:
FIG. 1 illustrates a pictorial representation of a data processing system in accordance with the method and system of the present invention;
FIG. 2 depicts a more detailed pictorial representation of the data processing system of FIG. 1 in accordance with the method and system of the present invention;
FIG. 3 illustrates a high level flow chart which depicts establishing a signature device including a signature value in accordance with the method and system of the present invention;
FIG. 4 depicts a high level flow chart which illustrates a computer system encrypting data utilizing a signature device to store on a hard disk drive in accordance with the method and system of the present invention; and
FIG. 5 illustrates a high level flow chart which depicts a computer system accessing encrypted data stored on a hard disk drive utilizing a signature device in accordance with the method and system of the present invention.
A preferred embodiment of the present invention and its advantages are better understood by referring to FIGS. 1-5 of the drawings, like numerals being used for like and corresponding parts of the accompanying drawings.
The present invention is a data processing system and method for protecting data to be stored on a hard disk drive. A removable signature device is included which includes a signature value stored on the signature device. The signature value is the digital signature of the signature device. The system includes a typical hard drive which does not include any password or encryption protection. In addition, the computer system does not include stored encryption keys.
A clear, textual description of the data is created. This description is signed utilizing the signature value stored in the signature device. The signed description is then hashed to create a seed value.
An encryption algorithm is utilized to create a temporary encryption key. The encryption algorithm typically utilizes a random number in order to generate an encryption key. In this present invention, however, instead of a random number, the seed value generated by hashing the signed description is utilized to generate an encryption key. The data is then encrypted utilizing the encryption key. The temporary encryption key is then deleted. It is not stored.
In order to utilize the stored data, the data must be decrypted. Therefore, the temporary encryption key must be recreated. To decrypt the data, the clear textual description of the data is retrieved. The signature device having the stored signature value must be utilized in order to decrypt the data. The clear text description is signed utilizing the signature device as described above. The signed description is then utilized in a hash algorithm to generate a hashed value. The hashed value is again used as a seed value in the encryption algorithm to generate a temporary encryption key. The encrypted data is then decrypted utilizing the temporary encryption key.
FIG. 1 illustrates a pictorial representation of a data processing system 30 in accordance with the method and system of the present invention. Computer system 30 includes a computer 12, a monitor 13, a keyboard 14, a mouse 16, and a printer or plotter 15. Computer system 30 may be implemented utilizing any commercially available computer system which has been suitably programmed and which has been modified as described below. Computer system 30 is capable of receiving a variety of different types of inputs from a variety of different types of input devices. Keyboard 14 and mouse 16 are two such types of input devices.
Computer 12 also includes an input port, such as USB port 260 for receiving a USB device, such as USB signature device 262. Signature device 262 is utilized to store a signature value (software key) as described below. Signature device 262 is preferably implemented utilizing a USB smart card reader, such as model GEM PC410 available from GEMPLUS, Redwood City, Calif.
FIG. 2 depicts a more detailed pictorial representation of the data processing system of FIG. 1 in accordance with the method and system of the present invention. Computer 12 includes a planar (also commonly called a motherboard or system board) which is mounted within computer 12 and provides a means for mounting and electrically interconnecting various components of computer 12 including a central processing unit (CPU) 200, system memory 206, and accessory cards or boards as is well known in the art.
CPU 200 is connected by address, control, and data busses 202 to a memory controller and peripheral component interconnect (PCI) bus bridge 204 which is coupled to system memory 206. An integrated drive electronics (IDE) device controller 220, and a PCI bus to Industry Standard Architecture (ISA) bus bridge 204 are connected to PCI bus bridge 204 utilizing PCI bus 208. IDE controller 220 provides for the attachment of IDE compatible storage devices, such a removable hard disk drive 222. PCI/ISA bridge 212 provides an interface between PCI bus 208 and an optional feature or expansion bus such as the ISA bus 214. PCI/ISA bridge 212 includes power management logic. PCI/ISA bridge 212 is supplied power from battery 244 to prevent loss of configuration data stored in CMOS 213.
A PCI standard expansion bus with connector slots 210 is coupled to PCI bridge 204. PCI connector slots 210 may receive PCI bus compatible peripheral cards. An ISA standard expansion bus with connector slots 216 is connected to PCI/ISA bridge 212. ISA connector slots 216 may receive ISA compatible adapter cards (not shown). It will be appreciated that other expansion bus types may be used to permit expansion of the system with added devices. It should also be appreciated that two expansion busses are not required to implement the present invention.
An I/O controller 218 is coupled to PCI-ISA bridge controller 212. I/O controller 218 controls communication between PCI-ISA bridge controller 212 and devices and peripherals such as floppy drive 224, keyboard 14, and mouse 16 so that these devices may communicate with CPU 200.
PCI-ISA bridge controller 212 includes an interface for a flash memory 242 which includes an interface for address, data, flash chip select, and read/write. Flash memory 242 is an electrically erasable programmable read only memory (EEPROM) module and includes BIOS that is used to interface between the I/O devices and operating system.
Computer 12 includes a video controller 246 which may, for example, be plugged into one of PCI expansion slots 210. Video controller 246 is connected to video memory 248. The image in video memory 248 is read by controller 246 and displayed on monitor 13 which is connected to computer system 12 through connector 250.
Computer 12 includes a power supply 240 which supplies full normal system power 243.
FIG. 3 illustrates a high level flow chart which depicts establishing a signature device including a signature value, or software key, in accordance with the method and system of the present invention. The process starts as depicted at block 300 and thereafter passes to block 302 which illustrates establishing a unique computer identifier which identifies one particular computer system. Thereafter, block 304 depicts establishing a software signature value. For example, the software signature value may be an encryption key such as an RSA encryption key.
Encryption algorithms are known to ensure that only the intended recipient of a message can read and access the message. One known encryption algorithm is an asymmetric, or public key, algorithm. The public key algorithm is a method for encrypting messages sent from a first computer system to a second computer system. This algorithm provides for a key pair including a public key and a private key for each participant in a secure communication. This key pair is unique to each participant. Examples of such an encryption scheme are an RSA key pair system, and a secure sockets layer (SSL) system.
Next, block 306 illustrates the storage of the computer identifier and the software signature value in a signature device. The process then terminates as depicted at block 308.
FIG. 4 depicts a high level flow chart which illustrates a computer system encrypting data to store on a hard disk drive utilizing a signature device in accordance with the method and system of the present invention. The process starts as depicted at block 400 and thereafter passes to block 402 which illustrates the generation of data. Next, block 404 depicts the creation of a clear text description of the data. The process then passes to block 406 which illustrates the computer system signing the clear text description using the software signature value stored in the signature device. A signature is a unique number which uniquely identifies a particular device. A signature is used to authenticate the data signed utilizing the signature as being generated by the device identified by the signature. A device signs data by appending its unique number to the data. In this manner, the data itself is not changed. The unique signature is added to the data to create the signed data. In accordance with an important feature of the present invention, the data is signed utilizing a software signature value stored in the signature device, and not with a signature of the computer system. Thereafter, block 408 depicts hashing the signed description utilizing any commercially available hashing algorithm.
Block 410, then, illustrates the generation of a temporary encryption key, preferably utilizing a DES algorithm. The DES algorithm utilizes a seed in order to generate a DES key. Ordinarily, and in known systems, the seed utilized by the algorithm is a random number. In the present invention, the seed is the hashed, signed, clear text description. The process then passes to block 412 which depicts the computer system encrypting the data utilizing the temporary DES key. In this manner, the encrypted data is protected by the signature device. The data cannot be decrypted without utilizing the signature device. Thereafter, block 414 illustrates the storage of both the encrypted data and the clear text description into the hard disk drive. Next, block 416 depicts the deletion of the temporary DES key. The process then terminates as illustrated at block 418.
FIG. 5 illustrates a high level flow chart which depicts a computer system accessing encrypted data stored on a hard disk drive utilizing a signature device in accordance with the method and system of the present invention. The process starts as illustrated at block 500 and thereafter passes to block 502 which depicts retrieving the clear text description from the hard disk drive for the data to decrypt. Next, block 504 illustrates the computer system signing the clear text description using the software signature value stored in the signature device. Thereafter, block 506 depicts hashing the signed clear text description in order to generate a seed to be used in a DES algorithm.
Block 508, then, illustrates the generation of a temporary DES encryption key using the seed generated as depicted by block 506. The process then passes to block 510 which depicts the decryption of the data utilizing the temporary DES key. The temporary DES key is then deleted as illustrated by block 512. The process then terminates as depicted at block 514.
While a preferred embodiment has been particularly shown and described, it will be understood by those skilled in the art that various changes in form and detail may be made therein without departing from the spirit and scope of the present invention.
|Cited Patent||Filing date||Publication date||Applicant||Title|
|US4723284||Feb 14, 1983||Feb 2, 1988||Prime Computer, Inc.||Authentication system|
|US4924515||Aug 24, 1989||May 8, 1990||International Business Machines Coprporation||Secure management of keys using extended control vectors|
|US5214702||May 13, 1992||May 25, 1993||Fischer Addison M||Public key/signature cryptosystem with enhanced digital signature certification|
|US5677953 *||Jun 7, 1995||Oct 14, 1997||Spyrus, Inc.||System and method for access control for portable data storage media|
|US5724425||Jun 10, 1994||Mar 3, 1998||Sun Microsystems, Inc.||Method and apparatus for enhancing software security and distributing software|
|US6085321 *||Aug 14, 1998||Jul 4, 2000||Omnipoint Corporation||Unique digital signature|
|US6085322 *||Oct 12, 1998||Jul 4, 2000||Arcanvs||Method and apparatus for establishing the authenticity of an electronic document|
|US6098056 *||Nov 24, 1997||Aug 1, 2000||International Business Machines Corporation||System and method for controlling access rights to and security of digital content in a distributed information system, e.g., Internet|
|US6105131 *||Nov 26, 1997||Aug 15, 2000||International Business Machines Corporation||Secure server and method of operation for a distributed information system|
|US20030177357 *||Aug 20, 2001||Sep 18, 2003||Chamberlin Charles R.||Apparatus and methods for the secure transfer of electronic data|
|Citing Patent||Filing date||Publication date||Applicant||Title|
|US7185161 *||Nov 26, 2002||Feb 27, 2007||Lg Electronics Inc.||Method and apparatus for securing data stored on a removable storage medium of a computer system|
|US7529372 *||Sep 23, 2003||May 5, 2009||Intellon Corporation||Method for setting an encryption key for logical network separation|
|US8108693||Mar 30, 2006||Jan 31, 2012||Ged-I Ltd.||Method for data storage protection and encryption|
|US8347424 *||Feb 13, 2009||Jan 8, 2013||Zurn Industries, Llc||Leveling mechanism for floor drain|
|US9453331||Oct 15, 2013||Sep 27, 2016||Jason Buffington||Leveling and elevation adapter for the grate of a floor drain|
|US20030149852 *||Nov 26, 2002||Aug 7, 2003||Lg Electronics Inc.||Method and apparatus for securing data|
|US20040131189 *||Sep 23, 2003||Jul 8, 2004||Intellon Corporation||Robust system and method for remote setting of an encryption key for logical network separation|
|US20070118708 *||Jan 22, 2007||May 24, 2007||Lg Electronics Inc.||Method and apparatus for securing data stored on a removable storage medium of a computer system|
|US20080260144 *||Apr 17, 2008||Oct 23, 2008||Oki Data Corporation||Image forming apparatus|
|US20090067624 *||Sep 11, 2007||Mar 12, 2009||Patricio Lucas Cobelo||System and method of protecting content of an electronic file using a computer|
|US20090070580 *||Sep 12, 2007||Mar 12, 2009||Patricio Lucas Cobelo||Portable electronic file protection system|
|US20090077377 *||Sep 13, 2007||Mar 19, 2009||Patricio Lucas Cobelo||System and method of protecting content of an electronic file for sending and receiving|
|US20090077390 *||Sep 14, 2007||Mar 19, 2009||Particio Lucas Cobelo||Electronic file protection system having one or more removable memory devices|
|US20090223884 *||Feb 13, 2009||Sep 10, 2009||Zurn Industries, Llc.||Leveling Mechanism For Floor Drain|
|US20090271276 *||Apr 24, 2008||Oct 29, 2009||Qualcomm Incorporated||Electronic payment system|
|US20100250731 *||Mar 31, 2009||Sep 30, 2010||Xiao Haitao||Systems and methods for application identification|
|EP1983440A1||Apr 17, 2008||Oct 22, 2008||Oki Data Corporation||Image forming apparatus storing encrypted data on hard disk|
|U.S. Classification||713/176, 713/165, 713/175|
|Cooperative Classification||G06F21/80, G06F21/6209|
|European Classification||G06F21/80, G06F21/62A|
|Mar 17, 2000||AS||Assignment|
Owner name: INTERNATIONAL BUSINESS MACHINES CORPORATION, NEW Y
Free format text: ASSIGNMENT OF ASSIGNORS INTEREST;ASSIGNORS:CHALLENER, DAVID C.;CROMER, DARYL C.;DAVIS, MARK C.;AND OTHERS;REEL/FRAME:010688/0740;SIGNING DATES FROM 20000307 TO 20000315
|Oct 1, 2004||AS||Assignment|
Owner name: INTERNATIONAL BUSINESS MACHINES CORPORATION, NEW Y
Free format text: ASSIGNMENT OF ASSIGNORS INTEREST;ASSIGNORS:CHALLENER, DAVID CARROLL;CROMER, DARYL CARVIS;DAVIS, MARK CHARLES;AND OTHERS;REEL/FRAME:015209/0234;SIGNING DATES FROM 20040723 TO 20040828
|Aug 4, 2005||AS||Assignment|
Owner name: LENOVO (SINGAPORE) PTE LTD., SINGAPORE
Free format text: ASSIGNMENT OF ASSIGNORS INTEREST;ASSIGNOR:INTERNATIONAL BUSINESS MACHINES CORPORATION;REEL/FRAME:016891/0507
Effective date: 20050520
Owner name: LENOVO (SINGAPORE) PTE LTD.,SINGAPORE
Free format text: ASSIGNMENT OF ASSIGNORS INTEREST;ASSIGNOR:INTERNATIONAL BUSINESS MACHINES CORPORATION;REEL/FRAME:016891/0507
Effective date: 20050520
|Feb 6, 2007||CC||Certificate of correction|
|Jul 31, 2007||FPAY||Fee payment|
Year of fee payment: 4
|Jun 16, 2011||FPAY||Fee payment|
Year of fee payment: 8
|Jun 9, 2015||FPAY||Fee payment|
Year of fee payment: 12
|Nov 25, 2015||AS||Assignment|
Owner name: LENOVO PC INTERNATIONAL, HONG KONG
Free format text: NUNC PRO TUNC ASSIGNMENT;ASSIGNOR:LENOVO (SINGAPORE) PTE LTD.;REEL/FRAME:037160/0001
Effective date: 20130401